Self-Signed Certificate Generation

By Lex Li

This page shows you how to use Jexus Manager to generate self-signed certificates.

In this article:


Before setting HTTPS bindings, it is very important to configure server certificates ahead.


Self-signed certificates are usually used during testing.


Instead of using tools like Jexus Manager, you can use PowerShell to generate self-signed certificates with customization. Please refer to Microsoft Docs .

Self-Signed Certificate Wizard

Jexus Manager’s wizard is more powerful than the one IIS Manager offers, so the generated certificates are Chrome/Firefox friendly.

  • It allows you to specify multiple DNS names for the certificate (so-called SAN certificates).


    It uses the first DNS name as Common Name.

  • It allows you to generate wildcard certificates if the DNS names contain wildcard.

  • It offers SHA2 hashing method.

  • It allows you to set expiration date.

In Jexus Manager, the self-signed certificate wizard can be opened as below,

  1. Choose a server node in the Connections panel.
  2. In the middle panel, click Server Certificates icon to open the management page.
  3. Under Actions panel, click “Generate Self-Signed Certificate…” menu item.

Fill in the necessary information in this wizard page, and then click OK. Jexus Manager will generate a new certificate and install it to the desired store.

To Trust Self-Signed Certificate

Once a self-signed certificate is generated, it would be sometimes useful to add it to Trusted Certificate Authorities so that browser side errors are suppressed. This applies to Internet Explorer, Chrome, and Edge.

Jexus Manager makes it easy to do so,

  1. Choose the self-signed certificate from the list.
  2. Under Actions panel, click “Trust Self-Signed Certificate”.
  3. Accept the certificate in the following system dialog.